P
US7698551B2ExpiredUtilityPatentIndex 73

Method for broadcast encryption and key revocation of stateless receivers

Assignee: IBMPriority: Jan 26, 2001Filed: Apr 28, 2005Granted: Apr 13, 2010
Est. expiryJan 26, 2021(expired)· nominal 20-yr term from priority
Inventors:LOTSPIECH JEFFREY BRUCENAOR DALITNAOR SIMEON
H04L 12/18H04L 63/0428H04L 2209/606H04L 9/0891H04L 9/0836H04L 2209/605G11B 20/0021H04L 9/00
73
PatentIndex Score
5
Cited by
51
References
1
Claims

Abstract

A tree is used to partition stateless receivers in a broadcast content encryption system into subsets. Two different methods of partitioning are disclosed. When a set of revoked receivers is identified, the revoked receivers define a relatively small cover of the non-revoked receivers by disjoint subsets. Subset keys associated with the subsets are then used to encrypt a session key that in turn is used to encrypt the broadcast content. Only non-revoked receivers can decrypt the session key and, hence, the content.

Claims

exact text as granted — not AI-modified
1. A digital processing apparatus accessing a computer readable storage medium storing logic, the logic comprising:
 assigning each user in a group of users respective private information I u ; 
 selecting at least one session encryption key K; 
 partitioning users not in a revoked set R into disjoint subsets S il , . . . S im  having associated subset keys L il , . . . L im ; 
 encrypting the session key K with the subset keys L il , . . . , L im  to render m encrypted versions of the session key K; 
 identifying subsets of users using a subset difference routine wherein respective groups of users correspond to a universe of sets S l , . . . , S w  that can be described as “a first subtree A minus a second subtree B that is entirely contained in A” with each node in the tree having a set of labels, one unique to the node and others that are induced by ancestor nodes and with each user being assigned labels from all nodes hanging from nodes in a direct path between the user and the root but not from nodes in the direct path itself, further comprising: 
 partitioning the users into groups S l , . . . , S w , wherein “w” is an integer, and the groups establish subtrees in a tree; 
 using private information I u  to decrypt the session key, wherein the act of decrypting includes using information i j  such that a user belongs to a subset S ij , and retrieving a subset key L ij  using the private information of the user.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.